11 Dec, 2014

1 commit


17 Nov, 2014

1 commit


12 Nov, 2014

2 commits


07 Nov, 2014

1 commit


31 Oct, 2014

1 commit


30 Oct, 2014

2 commits


27 Oct, 2014

1 commit


24 Oct, 2014

1 commit


22 Oct, 2014

1 commit


15 Oct, 2014

1 commit


14 Oct, 2014

1 commit


10 Oct, 2014

2 commits


17 Sep, 2014

1 commit


03 Sep, 2014

1 commit


27 Aug, 2014

1 commit


11 Aug, 2014

1 commit


30 Jul, 2014

1 commit


29 Jul, 2014

2 commits


25 Jul, 2014

1 commit


16 Jul, 2014

1 commit

  • r3353:3535 https://svn.forgerock.org/openidm/branches/3.1-earlyprototype
    
    
    
    git-svn-id: https://svn.forgerock.org/openidm/trunk@3537 d98387aa-ee2c-4292-a9e6-504d2a719fd3
    brmiller
     

27 Jun, 2014

1 commit


26 Jun, 2014

1 commit


25 Jun, 2014

1 commit

  • Remove unused/unimplemented script directory configuration.
    
    
    git-svn-id: https://svn.forgerock.org/openidm/trunk@3458 d98387aa-ee2c-4292-a9e6-504d2a719fd3
    brmiller
     

18 Jun, 2014

1 commit


17 Jun, 2014

1 commit


09 Jun, 2014

1 commit


30 May, 2014

1 commit

  • Support reauth for any auth module configured in authentication.json.
     * AuthenticationService now handles requests on /authentication, replaciing
       AuthFilter which was not a filter, and did not fully handle reauth.
     * Authenticators are used from both JASPI auth modules and AuthenticationService
       to provide the authentication--either with Http headers in the case of the 
       auth modules, or from the authcid in the HttpContext and the reauth header 
       in the case of reauthentication.
     * AuthenticationService now satisfies the AuthenticationConfig service for 
       the purposes of OSGiAuthFilterBuilder's access to the config to build the 
       JASPI CAF.
     * The duplicative managed/user config at the top of the sample authentication.json 
       files are now removed, thus satisfying OPENIDM-1781.
    
    
    
    git-svn-id: https://svn.forgerock.org/openidm/trunk@3282 d98387aa-ee2c-4292-a9e6-504d2a719fd3
    brmiller
     

27 May, 2014

1 commit

  • Additional decoupling of auth module role calculation and security context 
    population from auth module validation code.  Notably:
    
     * factor out basic auth code to allow PassthroughModule to support both basic auth and X-OpenIDM- header auth.
     * remove IWAPassthroughModule in favor of using auth module configuration to control order of execution
     * separate client cert auth into its own module, supporting an list of "allowedAuthenticationIdPatterns" 
       to compare against the subject DN
     * remove static dependency on OSGIAuthnFilterBuilder for injection of OSGi artifacts - improves testability
    
    
    
    git-svn-id: https://svn.forgerock.org/openidm/trunk@3261 d98387aa-ee2c-4292-a9e6-504d2a719fd3
    brmiller
     

14 May, 2014

1 commit


13 May, 2014

1 commit


12 May, 2014

2 commits


30 Apr, 2014

1 commit


28 Apr, 2014

1 commit


23 Apr, 2014

1 commit


21 Apr, 2014

1 commit